Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2d5d90d503605ce6f9ac493d72680d19
-
Size
99KB
-
Sample
231231-jadr5sacb3
-
MD5
2d5d90d503605ce6f9ac493d72680d19
-
SHA1
ecd80682ed4544fad3da63250b177f6ce04df7e3
-
SHA256
df673aec5df7bdf30ef6699d45abedf4d9e5081471528981223fd47b11068484
-
SHA512
66b01ff11887c613e261635525f2614a03308744d9de7a84398afc01a08e461bc599e062bd9c83ffb1b47a66fabd4e7e5576a4ad923a159ea004c2c2d8a37972
-
SSDEEP
1536:n2YnE4M0TMuE89bEKSnCn5mNRqRF1zyoK1EnNAiiRegbOC7:2YE4MmMuESoqn5yR4FVysm3EC7
Malware Config
Targets
-
-
Target
2d5d90d503605ce6f9ac493d72680d19
-
Size
99KB
-
MD5
2d5d90d503605ce6f9ac493d72680d19
-
SHA1
ecd80682ed4544fad3da63250b177f6ce04df7e3
-
SHA256
df673aec5df7bdf30ef6699d45abedf4d9e5081471528981223fd47b11068484
-
SHA512
66b01ff11887c613e261635525f2614a03308744d9de7a84398afc01a08e461bc599e062bd9c83ffb1b47a66fabd4e7e5576a4ad923a159ea004c2c2d8a37972
-
SSDEEP
1536:n2YnE4M0TMuE89bEKSnCn5mNRqRF1zyoK1EnNAiiRegbOC7:2YE4MmMuESoqn5yR4FVysm3EC7
Score8/10-
Creates new service(s)
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
2Windows Service
2